Use Windows Server 2008 as a VPN Server
hi
I am looking for a solution in Windows Server 2008. i have heard that windows Server 2008 has the ability to act as a VPN Server with great capabilities.
I am having 10 to 15 locations, where all the locations are working on a basic ADSL internet connection and they actually dial an SSLvPN using the Forticlient SSLVPN Client. I also use dyndns. So I want this Windows Server2008 BOX to act as aVPN Server and configure Site-to-Site VPN or IPSec VPN, where the VPN Tunnel is always on in all the sites and it is managed by Windows Server 2008.
This Windows Server 2008 Box has to behind the firewall or in the DMZ please recommend.
If there are logics and steps for configuration it will help a lot in improving our infrastructure on a great scale.
Thanks
I am looking for a solution in Windows Server 2008. i have heard that windows Server 2008 has the ability to act as a VPN Server with great capabilities.
I am having 10 to 15 locations, where all the locations are working on a basic ADSL internet connection and they actually dial an SSLvPN using the Forticlient SSLVPN Client. I also use dyndns. So I want this Windows Server2008 BOX to act as aVPN Server and configure Site-to-Site VPN or IPSec VPN, where the VPN Tunnel is always on in all the sites and it is managed by Windows Server 2008.
This Windows Server 2008 Box has to behind the firewall or in the DMZ please recommend.
If there are logics and steps for configuration it will help a lot in improving our infrastructure on a great scale.
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Do you have servers at all sites already? What device do you have connected to your ADSL connection at your remote sites as a router?
If you have a server in every remote location, and you don't want to purchase firewalls / routers, and you don't have fixed IP addresses in remote locations, then PPTP tunnels using Windows Server 2008 RRAS service could be fine for you. At least at no cost.
The main server should be after a firewall/router doing NAT, or in a DMZ. You need to enable the RRAS role in all the remote services, create the tunnels, VPN users, routing, and so on.
Here is the guide you ar asking for (where you find all the information you need):
http://technet.microsoft.com/en-us/network/bb545655
Also look at: http://technet.microsoft.com/en-us/library/cc758232(WS.10).aspx
The main server should be after a firewall/router doing NAT, or in a DMZ. You need to enable the RRAS role in all the remote services, create the tunnels, VPN users, routing, and so on.
Here is the guide you ar asking for (where you find all the information you need):
http://technet.microsoft.com/en-us/network/bb545655
Also look at: http://technet.microsoft.com/en-us/library/cc758232(WS.10).aspx
ASKER